Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-28 | CVE-2023-21220 | Cleartext Transmission of Sensitive Information vulnerability in Google Android there is a possible use of unencrypted transport over cellular networks due to an insecure default value. | 7.5 |
| 2023-06-28 | CVE-2023-21223 | Out-of-bounds Read vulnerability in Google Android In LPP_ConvertGNSS_DataBitAssistance of LPP_CommonUtil.c, there is a possible out of bounds read due to a missing bounds check. | 7.5 |
| 2023-06-28 | CVE-2023-21224 | Out-of-bounds Read vulnerability in Google Android In ss_ProcessReturnResultComponent of ss_MmConManagement.c, there is a possible out of bounds read due to a heap buffer overflow. | 7.5 |
| 2023-06-28 | CVE-2023-21225 | Incorrect Authorization vulnerability in Google Android there is a possible way to bypass the protected confirmation screen due to Failure to lock display power. | 7.8 |
| 2023-06-28 | CVE-2023-21226 | Out-of-bounds Read vulnerability in Google Android In SAEMM_RetrieveTaiList of SAEMM_ContextManagement.c, there is a possible out of bounds read due to an incorrect bounds check. | 7.5 |
| 2023-06-15 | CVE-2023-21101 | Use After Free vulnerability in Google Android In multiple functions of WVDrmPlugin.cpp, there is a possible use after free due to a race condition. | 7.0 |
| 2023-06-15 | CVE-2023-21108 | Use After Free vulnerability in Google Android In sdpu_build_uuid_seq of sdp_discovery.cc, there is a possible out of bounds write due to a use after free. | 8.8 |
| 2023-06-15 | CVE-2023-21115 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Google Android 11.0/12.0/12.1 In btm_sec_encrypt_change of btm_sec.cc, there is a possible way to downgrade the link key type due to improperly used crypto. | 8.8 |
| 2023-06-15 | CVE-2023-21120 | Improper Locking vulnerability in Google Android In multiple functions of cdm_engine.cpp, there is a possible use-after-free due to improper locking. | 7.8 |
| 2023-06-15 | CVE-2023-21121 | Improper Input Validation vulnerability in Google Android 11.0/12.0 In onResume of AppManagementFragment.java, there is a possible way to prevent users from forgetting a previously connected VPN due to improper input validation. | 7.8 |